From f096ac464aa3aea2985f3520da0307a08d4860f3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Sandor=20Sz=C3=BCcs?= <sandor.szuecs@zalando.de>
Date: Thu, 18 May 2017 15:00:02 +0200
Subject: [PATCH] fix policy requirements for CF stack version

---
 deploy/requirements.md | 105 +++++++++++++++++++++++++++++++++++++++++
 1 file changed, 105 insertions(+)

diff --git a/deploy/requirements.md b/deploy/requirements.md
index 1cf47d33..57bdd9cb 100644
--- a/deploy/requirements.md
+++ b/deploy/requirements.md
@@ -149,6 +149,106 @@ Please also note that the worker nodes will need the right permission to describ
     "Resource": "*",
     "Effect": "Allow"
 },
+{
+    "Action": "elasticloadbalancing:DescribeLoadBalancers",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancing:CreateLoadBalancer",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancing:DeleteLoadBalancer",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancing:DescribeListeners",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancing:CreateListener",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancing:DeleteListener",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancing:DescribeTags",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancing:CreateTargetGroup",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancing:DeleteTargetGroup",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancing:DescribeTargetGroups",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancingv2:DescribeTargetGroups",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancingv2:DescribeLoadBalancers",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancingv2:CreateLoadBalancer",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancingv2:DeleteLoadBalancer",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancingv2:DescribeListeners",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancingv2:CreateListener",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancingv2:DeleteListener",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancingv2:DescribeTags",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancingv2:CreateTargetGroup",
+    "Resource": "*",
+    "Effect": "Allow"
+},
+{
+    "Action": "elasticloadbalancingv2:DeleteTargetGroup",
+    "Resource": "*",
+    "Effect": "Allow"
+},
 {
     "Action": "ec2:DescribeInstances",
     "Resource": "*",
@@ -174,6 +274,11 @@ Please also note that the worker nodes will need the right permission to describ
     "Resource": "*",
     "Effect": "Allow"
 },
+{
+    "Action": "ec2:DescribeVpcs",
+    "Resource": "*",
+    "Effect": "Allow"
+},
 {
     "Action": "acm:ListCertificates",
     "Resource": "*",